Topic 1 Question 241
2 つ選択An ecommerce website was down for 1 hour following a DDoS attack. Users were unable to connect to the website during the attack period. The ecommerce company’s security team is worried about future potential attacks and wants to prepare for such events. The company needs to minimize downtime in its response to similar attacks in the future.
Which steps would help achieve this?
Enable Amazon GuardDuty to automatically monitor for malicious activity and block unauthorized access.
Subscribe to AWS Shield Advanced and reach out to AWS Support in the event of an attack.
Use VPC Flow Logs to monitor network traffic and an AWS Lambda function to automatically block an attacker’s IP using security groups.
Set up an Amazon EventBridge rule to monitor the AWS CloudTrail events in real time, use AWS Config rules to audit the configuration, and use AWS Systems Manager for remediation.
Use AWS WAF to create rules to respond to such attacks.
ユーザの投票
コメント(2)
- 正解だと思う選択肢: BE
B. Provides enhanced protection against DDoS attacks, including advanced mitigation capabilities. Includes 24/7 access to the AWS DDoS Response Team (DRT) for immediate assistance during an attack. Also provides cost protection to prevent unexpected charges due to scaling during a DDoS attack. E. AWS WAF can help create custom rules to detect and block malicious traffic patterns (e.g., rate-based rules, IP address blocking, or patterns indicative of DDoS). It integrates with AWS Shield and CloudFront for real-time traffic filtering. By setting up rate-limiting rules, WAF can help mitigate volumetric attacks.
👍 2TareDHakim2025/01/04 - 正解だと思う選択肢: AB
A: Enable GuardDuty for threat detection. B: AWS Shield advanced for DDoS attack.
👍 1Bachhu2025/01/02
シャッフルモード